square_authentication 11.2.2__tar.gz

square_authentication-11.2.2/PKG-INFO

@@ -0,0 +1,70 @@
+Metadata-Version: 2.3
+Name: square_authentication
+Version: 11.2.2
+Summary: authentication layer for my personal server.
+Keywords: authentication,fastapi,server,utilities
+Author: Parth Mukesh Mangtani
+Author-email: Parth Mukesh Mangtani <thepmsquare@gmail.com>
+License: GPLv3
+Classifier: Development Status :: 3 - Alpha
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: GNU General Public License v3 (GPLv3)
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3 :: Only
+Classifier: Topic :: Security
+Classifier: Topic :: Internet :: WWW/HTTP :: HTTP Servers
+Classifier: Topic :: Internet :: WWW/HTTP :: Dynamic Content
+Classifier: Framework :: FastAPI
+Requires-Dist: uvicorn>=0.24.0.post1
+Requires-Dist: fastapi>=0.104.1
+Requires-Dist: python-multipart>=0.0.6
+Requires-Dist: pydantic>=2.5.3
+Requires-Dist: bcrypt>=4.1.2
+Requires-Dist: pyjwt>=2.8.0
+Requires-Dist: requests>=2.32.3
+Requires-Dist: cryptography>=42.0.7
+Requires-Dist: square-commons>=3.1.0
+Requires-Dist: square-logger>=3.0.0
+Requires-Dist: square-database-helper>=2.7.1
+Requires-Dist: square-database-structure>=2.6.0
+Requires-Dist: square-file-store-helper>=3.1.1
+Requires-Dist: httpx>=0.27.2
+Requires-Dist: google-auth>=2.40.3
+Requires-Dist: pytest>=8.3.3 ; extra == 'all'
+Requires-Dist: pytest>=8.3.3 ; extra == 'dev'
+Requires-Python: >=3.12
+Project-URL: homepage, https://github.com/thepmsquare/square_authentication
+Provides-Extra: all
+Provides-Extra: dev
+Description-Content-Type: text/markdown
+
+# square_authentication
+
+> 📌 versioning: see [CHANGELOG.md](./CHANGELOG.md).
+
+## about
+
+authentication layer for my personal server.
+
+## goals
+
+- integration with square_*
+- unified authentication api across all projects
+- jwt token support
+- simple user and user profile management
+- oauth support
+- future extensibility
+
+## Installation
+
+```shell
+pip install square_authentication
+```
+
+## env
+
+- python>=3.12.0
+
+> feedback is appreciated. thank you!

square_authentication-11.2.2/README.md

@@ -0,0 +1,28 @@
+# square_authentication
+
+> 📌 versioning: see [CHANGELOG.md](./CHANGELOG.md).
+
+## about
+
+authentication layer for my personal server.
+
+## goals
+
+- integration with square_*
+- unified authentication api across all projects
+- jwt token support
+- simple user and user profile management
+- oauth support
+- future extensibility
+
+## Installation
+
+```shell
+pip install square_authentication
+```
+
+## env
+
+- python>=3.12.0
+
+> feedback is appreciated. thank you!

square_authentication-11.2.2/pyproject.toml

@@ -0,0 +1,53 @@
+[build-system]
+requires = ["uv-build"]
+build-backend = "uv_build"
+
+[project]
+name = "square_authentication"
+version = "11.2.2"
+description = "authentication layer for my personal server."
+readme = "README.md"
+readme-content-type = "text/markdown"
+requires-python = ">=3.12"
+license = { text = "GPLv3" }
+authors = [
+    { name = "Parth Mukesh Mangtani", email = "thepmsquare@gmail.com" },
+]
+urls = { homepage = "https://github.com/thepmsquare/square_authentication" }
+keywords = ["authentication", "fastapi", "server", "utilities"]
+dependencies = [
+    "uvicorn>=0.24.0.post1",
+    "fastapi>=0.104.1",
+    "python-multipart>=0.0.6",
+    "pydantic>=2.5.3",
+    "bcrypt>=4.1.2",
+    "pyjwt>=2.8.0",
+    "requests>=2.32.3",
+    "cryptography>=42.0.7",
+    "square_commons>=3.1.0",
+    "square_logger>=3.0.0",
+    "square_database_helper>=2.7.1",
+    "square_database_structure>=2.6.0",
+    "square_file_store_helper>=3.1.1",
+    "httpx>=0.27.2",
+    "google-auth>=2.40.3",
+]
+optional-dependencies = { all = ["pytest>=8.3.3"], dev = ["pytest>=8.3.3"] }
+classifiers = [
+    "Development Status :: 3 - Alpha",
+    "Intended Audience :: Developers",
+    "License :: OSI Approved :: GNU General Public License v3 (GPLv3)",
+    "Operating System :: OS Independent",
+    "Programming Language :: Python :: 3",
+    "Programming Language :: Python :: 3.12",
+    "Programming Language :: Python :: 3 :: Only",
+    "Topic :: Security",
+    "Topic :: Internet :: WWW/HTTP :: HTTP Servers",
+    "Topic :: Internet :: WWW/HTTP :: Dynamic Content",
+    "Framework :: FastAPI"
+]
+
+[tool.uv.build-backend]
+module-name = "square_authentication"
+module-root = ""
+source-include = ["square_authentication/data/*"]

square_authentication-11.2.2/square_authentication/configuration.py

@@ -0,0 +1,175 @@
+import os
+import sys
+
+from square_commons import ConfigReader
+from square_database_helper import SquareDatabaseHelper
+from square_file_store_helper import SquareFileStoreHelper
+from square_logger.main import SquareLogger
+
+try:
+    config_file_path = os.path.join(
+        os.path.dirname(os.path.abspath(__file__)), "data", "config.ini"
+    )
+    config_sample_file_path = os.path.join(
+        os.path.dirname(os.path.abspath(__file__)), "data", "config.sample.ini"
+    )
+    ldict_configuration = ConfigReader(
+        config_file_path, config_sample_file_path
+    ).read_configuration()
+
+    # get all vars and typecast
+    # ===========================================
+    # general
+    config_str_module_name = ldict_configuration["GENERAL"]["MODULE_NAME"]
+    # ===========================================
+
+    # ===========================================
+    # environment
+    config_str_host_ip = ldict_configuration["ENVIRONMENT"]["HOST_IP"]
+    config_int_host_port = int(ldict_configuration["ENVIRONMENT"]["HOST_PORT"])
+    config_list_allow_origins = eval(
+        ldict_configuration["ENVIRONMENT"]["ALLOW_ORIGINS"]
+    )
+    config_str_log_file_name = ldict_configuration["ENVIRONMENT"]["LOG_FILE_NAME"]
+    config_str_secret_key_for_access_token = ldict_configuration["ENVIRONMENT"][
+        "SECRET_KEY_FOR_ACCESS_TOKEN"
+    ]
+    config_str_secret_key_for_refresh_token = ldict_configuration["ENVIRONMENT"][
+        "SECRET_KEY_FOR_REFRESH_TOKEN"
+    ]
+    config_int_access_token_valid_minutes = int(
+        ldict_configuration["ENVIRONMENT"]["ACCESS_TOKEN_VALID_MINUTES"]
+    )
+    config_int_refresh_token_valid_minutes = int(
+        ldict_configuration["ENVIRONMENT"]["REFRESH_TOKEN_VALID_MINUTES"]
+    )
+    config_str_ssl_crt_file_path = ldict_configuration["ENVIRONMENT"][
+        "SSL_CRT_FILE_PATH"
+    ]
+    config_str_ssl_key_file_path = ldict_configuration["ENVIRONMENT"][
+        "SSL_KEY_FILE_PATH"
+    ]
+    config_str_db_ip = ldict_configuration["ENVIRONMENT"]["DB_IP"]
+
+    config_int_db_port = int(ldict_configuration["ENVIRONMENT"]["DB_PORT"])
+
+    config_str_db_username = ldict_configuration["ENVIRONMENT"]["DB_USERNAME"]
+
+    config_str_db_password = ldict_configuration["ENVIRONMENT"]["DB_PASSWORD"]
+    # ===========================================
+
+    # ===========================================
+    # square_logger
+    config_int_log_level = int(ldict_configuration["SQUARE_LOGGER"]["LOG_LEVEL"])
+    config_str_log_path = ldict_configuration["SQUARE_LOGGER"]["LOG_PATH"]
+    config_int_log_backup_count = int(
+        ldict_configuration["SQUARE_LOGGER"]["LOG_BACKUP_COUNT"]
+    )
+    config_formatter_choice = ldict_configuration["SQUARE_LOGGER"]["FORMATTER_CHOICE"]
+    if config_formatter_choice not in ("human_readable", "json"):
+        raise ValueError(f"Invalid formatter choice: {config_formatter_choice}")
+    config_bool_enable_redaction = eval(
+        ldict_configuration["SQUARE_LOGGER"]["ENABLE_REDACTION"]
+    )
+    # ===========================================
+
+    # ===========================================
+    # square_database_helper
+
+    config_str_square_database_protocol = ldict_configuration["SQUARE_DATABASE_HELPER"][
+        "SQUARE_DATABASE_PROTOCOL"
+    ]
+    config_str_square_database_ip = ldict_configuration["SQUARE_DATABASE_HELPER"][
+        "SQUARE_DATABASE_IP"
+    ]
+    config_int_square_database_port = int(
+        ldict_configuration["SQUARE_DATABASE_HELPER"]["SQUARE_DATABASE_PORT"]
+    )
+    # ===========================================
+
+    # ===========================================
+    # square_file_store_helper
+
+    config_str_square_file_store_protocol = ldict_configuration[
+        "SQUARE_FILE_STORE_HELPER"
+    ]["SQUARE_FILE_STORE_PROTOCOL"]
+    config_str_square_file_store_ip = ldict_configuration["SQUARE_FILE_STORE_HELPER"][
+        "SQUARE_FILE_STORE_IP"
+    ]
+    config_int_square_file_store_port = int(
+        ldict_configuration["SQUARE_FILE_STORE_HELPER"]["SQUARE_FILE_STORE_PORT"]
+    )
+
+    # ===========================================
+
+    # ===========================================
+    # EMAIL
+
+    MAIL_GUN_API_KEY = ldict_configuration["EMAIL"]["MAIL_GUN_API_KEY"]
+    # ===========================================
+    # ===========================================
+    # GOOGLE
+
+    GOOGLE_AUTH_PLATFORM_CLIENT_ID = ldict_configuration["GOOGLE"][
+        "GOOGLE_AUTH_PLATFORM_CLIENT_ID"
+    ]
+    # ===========================================
+    # ===========================================
+    # LOGIC
+
+    NUMBER_OF_RECOVERY_CODES = int(
+        ldict_configuration["LOGIC"]["NUMBER_OF_RECOVERY_CODES"]
+    )
+    EXPIRY_TIME_FOR_EMAIL_VERIFICATION_CODE_IN_SECONDS = int(
+        ldict_configuration["LOGIC"][
+            "EXPIRY_TIME_FOR_EMAIL_VERIFICATION_CODE_IN_SECONDS"
+        ]
+    )
+    NUMBER_OF_DIGITS_IN_EMAIL_VERIFICATION_CODE = int(
+        ldict_configuration["LOGIC"]["NUMBER_OF_DIGITS_IN_EMAIL_VERIFICATION_CODE"]
+    )
+    EXPIRY_TIME_FOR_EMAIL_PASSWORD_RESET_CODE_IN_SECONDS = int(
+        ldict_configuration["LOGIC"][
+            "EXPIRY_TIME_FOR_EMAIL_PASSWORD_RESET_CODE_IN_SECONDS"
+        ]
+    )
+    NUMBER_OF_DIGITS_IN_EMAIL_PASSWORD_RESET_CODE = int(
+        ldict_configuration["LOGIC"]["NUMBER_OF_DIGITS_IN_EMAIL_PASSWORD_RESET_CODE"]
+    )
+    RESEND_COOL_DOWN_TIME_FOR_EMAIL_VERIFICATION_CODE_IN_SECONDS = int(
+        ldict_configuration["LOGIC"][
+            "RESEND_COOL_DOWN_TIME_FOR_EMAIL_VERIFICATION_CODE_IN_SECONDS"
+        ]
+    )
+    RESEND_COOL_DOWN_TIME_FOR_EMAIL_PASSWORD_RESET_CODE_IN_SECONDS = int(
+        ldict_configuration["LOGIC"][
+            "RESEND_COOL_DOWN_TIME_FOR_EMAIL_PASSWORD_RESET_CODE_IN_SECONDS"
+        ]
+    )
+    # ===========================================
+
+    # Initialize logger
+    global_object_square_logger = SquareLogger(
+        log_file_name=config_str_log_file_name,
+        log_level=config_int_log_level,
+        log_path=config_str_log_path,
+        log_backup_count=config_int_log_backup_count,
+        formatter_choice=config_formatter_choice,
+        enable_redaction=config_bool_enable_redaction,
+    )
+    global_object_square_database_helper = SquareDatabaseHelper(
+        param_str_square_database_ip=config_str_square_database_ip,
+        param_int_square_database_port=config_int_square_database_port,
+        param_str_square_database_protocol=config_str_square_database_protocol,
+    )
+    global_object_square_file_store_helper = SquareFileStoreHelper(
+        param_str_square_file_store_protocol=config_str_square_file_store_protocol,
+        param_str_square_file_store_ip=config_str_square_file_store_ip,
+        param_int_square_file_store_port=config_int_square_file_store_port,
+    )
+except Exception as e:
+    print(
+        "\033[91mMissing or incorrect config.ini file.\n"
+        "Error details: " + str(e) + "\033[0m"
+    )
+    sys.exit()

square_authentication-11.2.2/square_authentication/data/config.sample.ini

@@ -0,0 +1,72 @@
+[GENERAL]
+MODULE_NAME = square_authentication
+
+[ENVIRONMENT]
+HOST_IP = 0.0.0.0
+HOST_PORT = 10011
+ALLOW_ORIGINS = ["http://localhost:10011"]
+
+LOG_FILE_NAME = square_authentication
+
+SECRET_KEY_FOR_ACCESS_TOKEN = dummy_access
+SECRET_KEY_FOR_REFRESH_TOKEN = dummy_refresh
+
+ACCESS_TOKEN_VALID_MINUTES = 1440
+REFRESH_TOKEN_VALID_MINUTES = 10080
+
+# absolute path (mandatory only for http)
+SSL_CRT_FILE_PATH = ssl.crt
+SSL_KEY_FILE_PATH = ssl.key
+
+DB_IP = localhost
+DB_PORT = 10001
+DB_USERNAME = postgres
+DB_PASSWORD = dummy
+
+[SQUARE_LOGGER]
+
+# | Log Level | Value |
+# | --------- | ----- |
+# | CRITICAL  | 50    |
+# | ERROR     | 40    |
+# | WARNING   | 30    |
+# | INFO      | 20    |
+# | DEBUG     | 10    |
+# | NOTSET    | 0     |
+
+LOG_LEVEL = 20
+# absolute or relative path
+LOG_PATH = logs
+# number of backup log files to keep during rotation
+# if backupCount is zero, rollover never occurs.
+LOG_BACKUP_COUNT = 3
+# json or human_readable
+FORMATTER_CHOICE = json
+ENABLE_REDACTION = True
+
+[SQUARE_DATABASE_HELPER]
+
+SQUARE_DATABASE_PROTOCOL = http
+SQUARE_DATABASE_IP = localhost
+SQUARE_DATABASE_PORT = 10010
+
+[SQUARE_FILE_STORE_HELPER]
+
+SQUARE_FILE_STORE_PROTOCOL = http
+SQUARE_FILE_STORE_IP = localhost
+SQUARE_FILE_STORE_PORT = 10100
+
+[EMAIL]
+MAIL_GUN_API_KEY = dummy_mailgun_api_key
+
+[GOOGLE]
+GOOGLE_AUTH_PLATFORM_CLIENT_ID = dummy_google_client_id
+
+[LOGIC]
+NUMBER_OF_RECOVERY_CODES = 10
+EXPIRY_TIME_FOR_EMAIL_VERIFICATION_CODE_IN_SECONDS = 600
+NUMBER_OF_DIGITS_IN_EMAIL_VERIFICATION_CODE = 6
+EXPIRY_TIME_FOR_EMAIL_PASSWORD_RESET_CODE_IN_SECONDS = 600
+NUMBER_OF_DIGITS_IN_EMAIL_PASSWORD_RESET_CODE = 6
+RESEND_COOL_DOWN_TIME_FOR_EMAIL_VERIFICATION_CODE_IN_SECONDS = 60
+RESEND_COOL_DOWN_TIME_FOR_EMAIL_PASSWORD_RESET_CODE_IN_SECONDS = 60

square_authentication-11.2.2/square_authentication/data/config.testing.sample.ini

@@ -0,0 +1,72 @@
+[GENERAL]
+MODULE_NAME = square_authentication
+
+[ENVIRONMENT]
+HOST_IP = 0.0.0.0
+HOST_PORT = 10011
+ALLOW_ORIGINS = ["http://localhost:10011"]
+
+LOG_FILE_NAME = square_authentication
+
+SECRET_KEY_FOR_ACCESS_TOKEN = dummy_access
+SECRET_KEY_FOR_REFRESH_TOKEN = dummy_refresh
+
+ACCESS_TOKEN_VALID_MINUTES = 1440
+REFRESH_TOKEN_VALID_MINUTES = 10080
+
+# absolute path (mandatory only for http)
+SSL_CRT_FILE_PATH = ssl.crt
+SSL_KEY_FILE_PATH = ssl.key
+
+DB_IP = raspi.thepmsquare.com
+DB_PORT = 15432
+DB_USERNAME = postgres
+DB_PASSWORD = testing_password
+
+[SQUARE_LOGGER]
+
+# | Log Level | Value |
+# | --------- | ----- |
+# | CRITICAL  | 50    |
+# | ERROR     | 40    |
+# | WARNING   | 30    |
+# | INFO      | 20    |
+# | DEBUG     | 10    |
+# | NOTSET    | 0     |
+
+LOG_LEVEL = 20
+# absolute or relative path
+LOG_PATH = logs
+# number of backup log files to keep during rotation
+# if backupCount is zero, rollover never occurs.
+LOG_BACKUP_COUNT = 3
+# json or human_readable
+FORMATTER_CHOICE = json
+ENABLE_REDACTION = True
+
+[SQUARE_DATABASE_HELPER]
+
+SQUARE_DATABASE_PROTOCOL = http
+SQUARE_DATABASE_IP = raspi.thepmsquare.com
+SQUARE_DATABASE_PORT = 20010
+
+[SQUARE_FILE_STORE_HELPER]
+
+SQUARE_FILE_STORE_PROTOCOL = http
+SQUARE_FILE_STORE_IP = raspi.thepmsquare.com
+SQUARE_FILE_STORE_PORT = 20010
+
+[EMAIL]
+MAIL_GUN_API_KEY = dummy_mailgun_api_key
+
+[GOOGLE]
+GOOGLE_AUTH_PLATFORM_CLIENT_ID = dummy_google_client_id
+
+[LOGIC]
+NUMBER_OF_RECOVERY_CODES = 10
+EXPIRY_TIME_FOR_EMAIL_VERIFICATION_CODE_IN_SECONDS = 600
+NUMBER_OF_DIGITS_IN_EMAIL_VERIFICATION_CODE = 6
+EXPIRY_TIME_FOR_EMAIL_PASSWORD_RESET_CODE_IN_SECONDS = 600
+NUMBER_OF_DIGITS_IN_EMAIL_PASSWORD_RESET_CODE = 6
+RESEND_COOL_DOWN_TIME_FOR_EMAIL_VERIFICATION_CODE_IN_SECONDS = 60
+RESEND_COOL_DOWN_TIME_FOR_EMAIL_PASSWORD_RESET_CODE_IN_SECONDS = 60

square_authentication-11.2.2/square_authentication/main.py

@@ -0,0 +1,62 @@
+import os.path
+
+from fastapi import FastAPI, status
+from fastapi.middleware.cors import CORSMiddleware
+from fastapi.responses import JSONResponse
+from square_commons import get_api_output_in_standard_format
+from uvicorn import run
+
+from square_authentication.configuration import (
+    config_int_host_port,
+    config_str_host_ip,
+    global_object_square_logger,
+    config_str_module_name,
+    config_str_ssl_key_file_path,
+    config_str_ssl_crt_file_path,
+    config_list_allow_origins,
+)
+from square_authentication.routes import core, internal, profile
+
+app = FastAPI()
+
+app.add_middleware(
+    CORSMiddleware,
+    allow_credentials=True,
+    allow_origins=config_list_allow_origins,
+    allow_methods=["*"],
+    allow_headers=["*"],
+)
+
+app.include_router(core.router)
+app.include_router(internal.router)
+app.include_router(profile.router)
+
+
+@app.get("/")
+@global_object_square_logger.auto_logger()
+async def root():
+    output_content = get_api_output_in_standard_format(log=config_str_module_name)
+    return JSONResponse(status_code=status.HTTP_200_OK, content=output_content)
+
+
+if __name__ == "__main__":
+    try:
+        if os.path.exists(config_str_ssl_key_file_path) and os.path.exists(
+            config_str_ssl_crt_file_path
+        ):
+            run(
+                app,
+                host=config_str_host_ip,
+                port=config_int_host_port,
+                ssl_certfile=config_str_ssl_crt_file_path,
+                ssl_keyfile=config_str_ssl_key_file_path,
+            )
+        else:
+            run(
+                app,
+                host=config_str_host_ip,
+                port=config_int_host_port,
+            )
+
+    except Exception as exc:
+        global_object_square_logger.logger.critical(exc, exc_info=True)

square_authentication-11.2.2/square_authentication/messages.py

@@ -0,0 +1,32 @@
+messages = {
+    "REGISTRATION_SUCCESSFUL": "registration was successful. welcome aboard!",
+    "LOGIN_SUCCESSFUL": "you have logged in successfully.",
+    "LOGOUT_SUCCESSFUL": "you have logged out successfully.",
+    "INCORRECT_USERNAME": "the username you entered does not exist.",
+    "INCORRECT_PASSWORD": "the password you entered is incorrect. please try again.",
+    "INCORRECT_USER_ID": "the user ID you provided does not exist or is invalid.",
+    "USERNAME_INVALID": "username must start and end with a lowercase letter and can include only lowercase letters, digits, underscores, or hyphens. no spaces, no dots, and no consecutive special characters.",
+    "USERNAME_ALREADY_EXISTS": "the username you entered is already taken. please choose a different one.",
+    "INCORRECT_ACCESS_TOKEN": "the access token provided is invalid or expired.",
+    "INCORRECT_REFRESH_TOKEN": "the refresh token provided is invalid or expired.",
+    "GENERIC_CREATION_SUCCESSFUL": "records created successfully.",
+    "GENERIC_READ_SUCCESSFUL": "data retrieved successfully.",
+    "GENERIC_UPDATE_SUCCESSFUL": "your information has been updated successfully.",
+    "GENERIC_DELETE_SUCCESSFUL": "your records have been deleted successfully.",
+    "GENERIC_ACTION_SUCCESSFUL": "the action was completed successfully.",
+    "GENERIC_400": "the request is invalid or cannot be processed.",
+    "GENERIC_500": "an internal server error occurred. please try again later.",
+    "INVALID_FILE_FORMAT": "the file format is not supported. please upload a valid file.",
+    "FILE_SIZE_EXCEEDS_LIMIT": "the file size exceeds the limit. please upload a smaller file.",
+    "INCORRECT_AUTH_PROVIDER": "you have not linked this authentication provider to your account. please link it first.",
+    "INVALID_EMAIL_FORMAT": "the email address is invalid. please provide a valid email address.",
+    "INVALID_PHONE_NUMBER_FORMAT": "the phone number is invalid. please provide a valid phone number.",
+    "GENERIC_MISSING_REQUIRED_FIELD": "a required field is missing. please check your input and try again.",
+    "RECOVERY_METHOD_NOT_ENABLED": "the recovery method you are trying to use is not enabled for your account.",
+    "INCORRECT_BACKUP_CODE": "the backup code you provided is incorrect or has already been used. please try again with a valid code.",
+    "EMAIL_ALREADY_VERIFIED": "your email address has already been verified.",
+    "INCORRECT_VERIFICATION_CODE": "the verification code you entered is incorrect or has expired. please request a new code.",
+    "EMAIL_NOT_VERIFIED": "your email address has not been verified. please verify your email to continue.",
+    "ACCOUNT_WITH_EMAIL_ALREADY_EXISTS": "an account with this email address already exists.",
+    "MALFORMED_USER": " the user data is malformed or incomplete.",
+}